Possessed baby monitor shouts obscenities at Texas tot A Texas father ripped out the baby video monitor he'd installed to watch over his two year-old daughter after he heard a British or European man using the device to address the child by name. Father of two Marc Gilbert told ABC News that he heard a male voice coming from inside his daughter's bedroom, calling out her name and …
Seeing as how this guy is a Texan the voice could have been anything that wasn't Texan or Mexican. People in Texas aren't exactly known for their vast knowledge other cultures. This guy is a rare example in that he was able to seperate Britian from Europe; his wife probably watches Downton Abbey or he couldn't even have made a guess.
Hacking a baby monitor is straight creepy though. I hadn't even considered that people would do that. I should've known better.
Well, that's splitting hairs. People from French overseas territories are also French and not European, but you don't get people saying "French or European"
In the particular case of accents, a British accent is very distinct from a European one, so this Texan is very confused. It's like a crime scene witness being asked what colour the getaway car was and saying "red or blue"
James, before this story was cast broadly, I would have said that “you don’t get people saying ‘British or European’” in describing an accent, but apparently we do now. If I split hairs to figure out why, so be it.
People who learn English as an nth language sometimes have a choice of learning with a European English vocabulary and accent, or learning with a North American English vocabulary and accent. Talented students can reproduce the accent that they learn; hearing such a student speak could lead a native English speaker to determine that the student spoke a particular variety of English, but not as his mother tongue. In this case, “British or European” could mean that the Texan father recognized a non-North American accent coming from someone who was not a native English speaker.
Playing the part of a nasty villain requires some acting ability and a pompous air, something your average low-grade RSC thesp can knock out without really trying. Playing the part of a good guy in US film requires that you can recite verbatim a load of tired cliches while firing a large gun and grinning inanely at some token bimbo who needed saving from her own stupidity!
People in Texas aren't exactly known for their vast knowledge other cultures.
That's rather like saying Brits aren't known for their ability to have fun. And just about as accurate.
In a far more reality based statement, cultural stereotypes aren't exactly known for being accurate.
That's weird.... I thought the whole point of the baby monitor is that the bit at the baby's end is just microphone (+ in this case camera). One of the main points of a baby monitor* is that it is one-way only.
If there is a speaker at the baby's end it's a walkie-talkie not a baby monitor.
* The other main point of a baby monitor is that if whoever is monitoring the monitoring end is worried about something they can go to the baby's location in a few seconds. There's no reason for it to be on the internet. If you're using some sort of webcan device, set it up properly dude!
Most baby monitors allow you to push a button to talk to them from the (nominally) receiver end. Never used that feature on ours since a disembodied crackly voice isn't really the most soothing thing a baby can hear.
Never saw the point in IP connected baby monitors.. You can get a dedicated video monitor pretty cheaply these days - no need to have a PC/smartphone permanently accessing the cam just on the off-chance of anything happening.
You're probably violating the T&C's of the baby monitor using it that way. If you want to use it to communicate with adults you need to upgrade to the R2R (Room-to-Room) Wireless Communications System. It features a sleek black housing and uses stainless steel buttons instead of pastel colored controls.
I thought the whole point of the baby monitor is that the bit at the baby's end is just microphone (+ in this case camera).
Not for at least the last 5 years (when my oldest was born). These days high end baby monitors have a speaker on the baby's end so that mommy and/or daddy can sooth the baby by voice without having to get up.
It's a waste of money if you ask me. Never once have I gotten either of my kids to calm down by talking to them from across the room. Whet they want a parental unit they want more than just a voice. And if the baby was deaf then it was REALLY a waste of money.
You are correct.
99% of Foscam cameras run older firmware that allows anyone to get a memory dump of all the passwords, emails, ssids, ftp servers - everything stored on the cameras. All you do is append //proc/kcore to the cameras IP address.
These guys had used a strong password, they just fell foul to Foscam deplorable coding standards.
I picked up a very similar (if maybe slightly less 'no-name' as it has clones) Foscam.
Actually pretty damn good for the money, but does come with both a built in dynamic dyns service with a pre-specified address and upnp.
I can't remember what the default setup was, but I guess it only takes a few mis-clicks in the config and inability to setup a secure password and a ping sweeper with regex... ooh there's a fun task for me this evening :)
"He set the camera up and opened a port in the firewall as the install software asked for it, and didn't change the default password on the camera itself"
He set the camera up, left UPNP enabled on the camera (as it was previously left enabled on his broadband router) and failed to set his own username and password, so it is still the default: admin/(blank). A free dynamic DNS service probably helped advertise the camera's online presence, assisted by Google search.
The camera manufacturers don't want their support people spending every day talking people through opening ports on an assortment of different routers, so they are likely to take the easy route.
99% of Foscam cameras run older firmware that allows anyone to get a memory dump of all the passwords, emails, ssids, ftp servers - everything stored on the cameras. All you do is append //proc/kcore to the cameras IP address.
These guys had used a strong password, they just fell foul to Foscam deplorable coding standards.
What good is a firewall when UPNP/DLNA is used? It opens the port needed to connect to the baby monitor. Now you need the password to it, probably not hard to get as many cameras are not known for their stellar security. It could be as easy a going to a URL to either bypass the authentication, make changes or see what it is set too. The guy could have also decrypted the pre-shared key.
I find it funny the guy called his ISP; not like they sold him the camera.
I find it funny the guy called his ISP; not like they sold him the camera.
This coming from the same country where they "magic bullet" pirate cable connections, then wait for their non-legal subscribers to call the cable 1800 number to complain the service has dropped out.
With a population of 300+Million, Not surprising at all that some of them are a bit simple.
I know what happened, I've seen this type of camera (although the one I saw did not have the speaker, others do.) By default, some models will connect to a site run by the company that made the camera. This is meant as a convenience, the camera has a little card that says "go to mycamera-ab78.somewhere.com" or whatever, you go there, and it goes right to your camera so you can access it easily on the road without bothering with setting up port forwarding or anything. If you don't turn this off, or bother to change the username and password -- yes, just what you'd expect.
This post has been deleted by its author
I'm absolutely stunned that someone would even consider an IP camera in a child's room if there was a possibility of an external network connection being formed. I'm sure people will argue that it's to monitor children while the parents are not at home, in which case I'd suggest they have a far larger issue than a creepy hacker.
It reminded me of the IP camera set I bought from Aldi that had been used, a dynamic IP service set and fully password protected. Not even a factory reset would allow access and a firmware update could only be done, you guessed it, from within the password protected zone. Needless to say that I returned it. Aldi were gobsmacked as to how it had happened given that the security seals were intact at time of purchase. I suggested at the point of manufacture and the Manager removed all remaining units from the floor.
"I'm absolutely stunned that someone would even consider an IP camera in a child's room if there was a possibility of an external network connection being formed."
The world is not The Register. Most people don't have a deep understanding of computers let alone of computer security.
I'm stunned that even the most mindless social gimp would swear at/frighten a sleeping bairn. These gimps are also stunningly naive in their belief that the internet is somehow magic and anonymous and that they are safe from detection, exposure and punishment. Some wretch believes Tor or whatever will protect him. Has a laff abusing folks on line. One day he goes to far and commits a crime by threatening to kill/assault somebody. He is in custody within 24 hours.
Opinions seem to be sharply divided on whether this man's home network was adequately secured.
I suppose there are Europeans with the skills to hack into it and take over the baby alarm, though why they would bother is a mystery. But the article also says He heard a male voice coming from inside his daughter's bedroom, calling out her name. This implies that alleged hacker gained access to a computer, where he was able to find out the baby's name, then hacked the baby alarm. Possible, but vanishingly improbable.
I suppose there are Europeans with the skills to hack into it and take over the baby alarm, though why they would bother is a mystery.
Dunno if you're being sarcastic, but why do people hack anything? Boredom? Thrills? Mental problems? I'd actually be reluctant to call this hacking as it doesn't require any technical prowess to increment some letters and numbers in a dyndns address to hop from one webcam to the next.
Well, why be so narrow minded?
Apart from the 'mid-Atlantic' accent you get from East Coast US with UK business connections, what about the rest of the world?
I recall checking into an hotel on the East Coast US and being told "Hey - there's some of your guys in the bar."
Turns out they were Australian.
So could have been an antipodean intruder.
Or almost anyone not born and raised in Texas.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
